PRIVACY POLICY
General information
We process users’ personal data in accordance with the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). Processing is carried out to provide a functional website, to fulfil contractual or pre-contractual obligations, on the basis of legitimate interests and, where required, on the basis of given consent.
Your rights under the GDPR
You have the right to obtain information about the processing of your personal data and the right to rectification of inaccurate data. You also have the right to erasure, restriction of processing and data portability, provided the statutory requirements are met.
Where processing is based on your consent, you may withdraw this consent at any time with effect for the future.
You also have the right to object to the processing of your personal data at any time for reasons arising from your particular situation.
You have the right to lodge a complaint with a competent data protection supervisory authority.
To exercise your rights, you may contact the address stated in the legal notice or our data protection contact at [email protected] at any time.
Server log files
When accessing our website, the hosting provider automatically collects and stores information in server log files:
• Browser type and version
• Operating system
• Referrer URL
• IP address
• Date and time of access
Purpose: ensuring technical operation, stability and security
Legal basis: Art. 6(1)(f) GDPR
Retention period: max. 14 days
TECHNICALLY NECESSARY SERVICES
Cookies and consent management
This website uses cookies. Consent management is handled by Real Cookie Banner by devowl.io GmbH, Tannet 12, 94539 Grafling, Germany.
Processed data:
• Consent status
• Technical browser information
Purpose: compliance with documentation obligations under GDPR and and applicable national laws
Legal basis: Art. 6(1)(c) GDPR
Retention period: until deletion in the browser
Details on the functionality of Real Cookie Banner can be found here.
Cloudflare, Inc. (Content Delivery Network, JavaScript CDN and security services)
Provider:
Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA
Processed data:
• IP address
• Technical header information
• Access data for static resources (e.g. JavaScript, CSS)
• Security-related metadata
Purpose: secure and performant provision of the website, delivery of static content via a global CDN and protection against attacks and misuse
Legal basis: Art. 6(1)(f) GDPR
Third-country transfer: USA
Transfer mechanism: Standard Contractual Clauses (Art. 46 GDPR)
Retention period: in accordance with Cloudflare’s contractual policies on log and security data processing
Cloudflare, Inc. (Turnstile bot and abuse protection)
Provider: Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA
Processed data:
• IP address
• Browser and device information
• Interaction and risk signals
• Technical header information
Purpose: protection of forms and website functions against automated access, bots and abuse and ensuring technical availability
Legal basis: Art. 6(1)(f) GDPR
Third-country transfer: USA
Transfer mechanism: Standard Contractual Clauses (Art. 46 GDPR)
Country selection (Elementor popup)
We use a technically necessary Elementor popup to control country selection. The selected option is stored locally in the user’s browser (local storage) to prevent repeated display and to provide the correct regional version of the website.
No directly identifiable personal data is processed. Storage takes place exclusively on the user’s device, e.g. under “elementor-popup-session-*”.
Legal basis: Art. 6(1)(f) GDPR
Legitimate interest: user-friendly and functional provision of the website
Retention: end of session or manual deletion of browser cache
Prospect One sp. z o.o. (jsDelivr CDN)
Provider: Prospect One sp. z o.o., Poland
Processed data:
• IP address
Purpose: technical delivery of JavaScript and CSS files
Legal basis: Art. 6(1)(f) GDPR
Cookies: none
Third-country transfer: no (EU)
Retention: in accordance with jsDelivr policies / short-term log storage
Wordfence Security
Provider: Defiant, Inc., USA
Processed data:
• IP address
• Access times
• Requested URLs
Purpose: protection against unauthorized access
Legal basis: Art. 6(1)(f) GDPR
Cookies: technically required
Third-country transfer: USA
Retention: up to 30 days
Transfer mechanism: Standard Contractual Clauses (Art. 46 GDPR)
unpkg
Provider: npm, Inc., 1999 Harrison Street #1150, Oakland, CA 94612, USA
Processed data:
• IP address
• Technical header data
Purpose: provision of JavaScript libraries
Legal basis: Art. 6(1)(f) GDPR
Legitimate interest: secure and efficient website provision
Retention: according to npm policies
Cookies: none
Third-country transfer: USA
Transfer mechanism: Standard Contractual Clauses (Art. 46 GDPR)
WEB ANALYTICS AND MARKETING SERVICES
The analytics and marketing services listed below are used only after consent has been given pursuant to Art. 6(1)(a) GDPR. Consent can be withdrawn at any time via the cookie settings.
Google Tag Manager from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, is used for the technical management and triggering of website tags. Google Tag Manager itself processes technical data (such as the IP address) to enable the integration of additional services, but does not store any permanent identifiers or user profiles.
Google services without Google Consent Mode
We do not use Google Consent Mode. Google services (e.g. Google Analytics, Google Ads) are controlled exclusively via the cookie banner and are only loaded after explicit consent.
Before consent is given, no Google tags are loaded, no data is transferred, no cookies are set and no cookieless signals or statistical modelling take place.
The processing of personal data by Google services is based exclusively on your consent in accordance with
Art. 6(1)(a) GDPR.
Google Analytics
Provider: Google Ireland Limited, Dublin, Ireland
Recipient: Google LLC, USA
Processed data:
• Usage data
• Device information
• Truncated IP address
Purpose: analysis of user behaviour and website optimisation
Cookies: yes
Third-country transfer: USA
Transfer mechanism: EU–US Data Privacy Framework
Retention: 14 months
Google Ads
Provider: Google Ireland Limited
Recipient: Google LLC, USA
Purpose: conversion tracking, marketing and remarketing
Legal basis: consent
Third-country transfer: USA
Transfer mechanism: EU–US Data Privacy Framework
Leadinfo B.V.
Provider: Leadinfo B.V., Netherlands
Processed data:
• Truncated IP address
• Company-related visit data
Purpose: B2B analysis
Legal basis: Art. 6(1)(f) GDPR
Processing takes place without prior consent as no data enabling direct identification of natural persons is processed. Objection can be made by email to [email protected] or via an objection directly on the Leadinfo website.
Lead Forensics Ltd.
Provider: Lead Forensics Ltd., United Kingdom
Processed data:
• Truncated IP address
• Technical usage data
Purpose: B2B visitor analysis
Legal basis: Art. 6(1)(f) GDPR
Transfer mechanism: Adequacy decision pursuant to Art. 45 GDPR
You can object to the processing at any time via the Privacy settings or by sending an email to [email protected]
Responsible party:
ABRAMS Industries GmbH & Co. KG
Managing Director:
Dipl.-Wi.-Ing. Dr. Jürgen Abrams
Contact Data Protection Officer:
[email protected]
